Policy CSP - CredentialsUI

تلميح

This CSP contains ADMX-backed policies which require a special SyncML format to enable or disable. You must specify the data type in the SyncML as <Format>chr</Format>. For details, see Understanding ADMX-backed policies.

The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see CDATA Sections.

DisablePasswordReveal

Scope	Editions	Applicable OS
✅ Device ✅ User	✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC	✅ Windows 10, version 1703 [10.0.15063] and later

User

./User/Vendor/MSFT/Policy/Config/CredentialsUI/DisablePasswordReveal

Device

./Device/Vendor/MSFT/Policy/Config/CredentialsUI/DisablePasswordReveal

This policy setting allows you to configure the display of the password reveal button in password entry user experiences.

• If you enable this policy setting, the password reveal button won't be displayed after a user types a password in the password entry text box.

• If you disable or don't configure this policy setting, the password reveal button will be displayed after a user types a password in the password entry text box.

By default, the password reveal button is displayed after a user types a password in the password entry text box. To display the password, click the password reveal button.

The policy applies to all Windows components and applications that use the Windows system controls, including Internet Explorer.

Description framework properties:

Property name	Property value
Format	chr (string)
Access Type	Add, Delete, Get, Replace

تلميح

This is an ADMX-backed policy and requires SyncML format for configuration. For an example of SyncML format, refer to Enabling a policy.

ADMX mapping:

Name	Value
Name	DisablePasswordReveal
Friendly Name	Do not display the password reveal button
Location	Computer and User Configuration
Path	Windows Components > Credential User Interface
Registry Key Name	Software\Policies\Microsoft\Windows\CredUI
Registry Value Name	DisablePasswordReveal
ADMX File Name	CredUI.admx

EnumerateAdministrators

Scope	Editions	Applicable OS
✅ Device ❌ User	✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC	✅ Windows 10, version 1703 [10.0.15063] and later

Device

./Device/Vendor/MSFT/Policy/Config/CredentialsUI/EnumerateAdministrators

This policy setting controls whether administrator accounts are displayed when a user attempts to elevate a running application. By default, administrator accounts aren't displayed when the user attempts to elevate a running application.

• If you enable this policy setting, all local administrator accounts on the PC will be displayed so the user can choose one and enter the correct password.

• If you disable this policy setting, users will always be required to type a user name and password to elevate.

Description framework properties:

Property name	Property value
Format	chr (string)
Access Type	Add, Delete, Get, Replace

تلميح

This is an ADMX-backed policy and requires SyncML format for configuration. For an example of SyncML format, refer to Enabling a policy.

ADMX mapping:

Name	Value
Name	EnumerateAdministrators
Friendly Name	Enumerate administrator accounts on elevation
Location	Computer Configuration
Path	Windows Components > Credential User Interface
Registry Key Name	Software\Microsoft\Windows\CurrentVersion\Policies\CredUI
Registry Value Name	EnumerateAdministrators
ADMX File Name	CredUI.admx

Related articles

Policy configuration service provider